[ On Tuesday, March 16, 1999 at 18:40:38 (-0500), Mike Pelley wrote: ]
> Subject: Re: Building a gateway
>
> Ipnat does not pass ICMP traffic (at least on 1.3.2/i386), so ping from your
> inside network to the outside won't work.

I'm not sure when IP Filter's NAT began to work properly with
NetBSD/i386 and pass ICMP echo-requests and their corresponding replies.
It does work OK by 3.2.7, and it certainly should work in NetBSD/1.3.3
(which includes 3.2.10).

Of course you do need to ensure that the NAT is mapping ICMP packets,
but the rules Eric is using should do that.

-- 
							Greg A. Woods

+1 416 218-0098      VE3TCP      <gwoods@acm.org>      <robohack!woods>
Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>